$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GOFrxRyM9L4Lycan6_6H2a9vJHU.roa File: GOFrxRyM9L4Lycan6_6H2a9vJHU.roa (raw, json) Hash identifier: 3EyWHkUEZxbSNTBNfqvUdi6KuOicIbDYM65xTbK27r0= Subject key identifier: 18:E1:6B:C5:1C:8C:F4:BE:0B:C9:C6:A7:EB:FE:87:D9:AF:6F:24:75 Certificate issuer: /CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Certificate serial: 12EE Authority key identifier: 18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 Authority info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer Subject info access: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GOFrxRyM9L4Lycan6_6H2a9vJHU.roa Signing time: Mon 10 Feb 2025 14:08:54 +0000 ROA not before: Mon 10 Feb 2025 14:08:54 +0000 ROA not after: Tue 26 Aug 2025 01:57:03 +0000 asID: 9924 IP address blocks: 60.199.171.0/24 maxlen: 32 Validation: OK Signature path: rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.mft rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.crl rsync://rpkica.twnic.tw/rpki/TWNICCA/ojp8Y1RxGKrkl_A-ExIclqs0VH4.mft rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/ojp8Y1RxGKrkl_A-ExIclqs0VH4.cer rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.crl rsync://rpki.apnic.net/repository/B527EF581D6611E2BB468F7C72FD1FF2/DmWk9f02tb1o6zySNAiXjJB6p58.mft rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/DmWk9f02tb1o6zySNAiXjJB6p58.cer rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.crl rsync://rpki.apnic.net/repository/980652E0B77E11E7A96A39521A4F4FB4/mBQsnQtBo7n7YD12mEgjb9HzGSQ.mft rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/mBQsnQtBo7n7YD12mEgjb9HzGSQ.cer rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.crl rsync://rpki.apnic.net/repository/838DB214166511E2B3BC286172FD1FF2/C5zKkN0Neoo3ZmsZIX_g2EA3t6I.mft rsync://rpki.apnic.net/repository/apnic-rpki-root-iana-origin.cer Signature path expires: Mon 07 Apr 2025 02:06:34 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 4846 (0x12ee) Signature Algorithm: sha256WithRSAEncryption Issuer: CN=18A6663D6E9F80BD4CE7C8ADFEB38783C3E1A464 Validity Not Before: Feb 10 14:08:54 2025 GMT Not After : Aug 26 01:57:03 2025 GMT Subject: CN=18E16BC51C8CF4BE0BC9C6A7EBFE87D9AF6F2475 Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:ec:f1:9c:e2:43:e4:c9:60:43:a3:16:65:3e:d5: f2:a1:06:89:9b:6b:45:c0:8c:80:0a:1b:5a:64:de: ae:c0:6b:c6:03:01:1b:b3:6f:e4:bb:59:e0:f5:fb: ab:c8:bc:3c:aa:44:e6:14:14:c0:94:01:6a:36:53: 5e:0a:2d:35:53:bd:99:a5:d2:e3:29:71:17:ee:47: 4e:f0:59:8f:db:6a:8d:45:51:87:73:77:c5:05:61: 18:ae:0c:04:2f:e3:14:81:93:ea:db:59:3a:20:d9: 75:f7:ab:6f:d0:8a:7e:8a:db:0e:7b:99:4f:34:d5: d6:e9:38:f8:47:5b:59:f1:3a:4d:52:f2:58:7d:b5: 2e:51:1c:31:47:5b:44:9b:ae:b1:59:1e:0e:87:7e: 09:69:93:93:21:16:bc:a1:cd:f2:36:ba:77:3d:30: ce:bb:28:bb:a5:cf:98:a9:d7:a6:34:8c:2e:de:2a: 3d:6a:cb:9b:a1:57:58:3e:98:0c:95:ce:dc:40:cc: 3e:a4:98:88:5f:39:13:86:28:84:19:ab:78:b6:2f: 56:7f:92:3a:0a:6b:58:24:f7:ca:f1:54:1e:22:49: 00:e1:59:2f:f8:14:6e:9a:49:33:e1:66:0c:c3:c7: 7a:40:cb:00:95:00:9d:0c:a9:9f:c5:c4:48:a6:ce: 10:41 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: 18:E1:6B:C5:1C:8C:F4:BE:0B:C9:C6:A7:EB:FE:87:D9:AF:6F:24:75 X509v3 Authority Key Identifier: keyid:18:A6:66:3D:6E:9F:80:BD:4C:E7:C8:AD:FE:B3:87:83:C3:E1:A4:64 X509v3 Certificate Policies: critical Policy: ipAddr-asNumber X509v3 CRL Distribution Points: Full Name: URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GKZmPW6fgL1M58it_rOHg8PhpGQ.crl Authority Information Access: CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/GKZmPW6fgL1M58it_rOHg8PhpGQ.cer X509v3 Key Usage: critical Digital Signature Subject Information Access: Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/PROFOND/GOFrxRyM9L4Lycan6_6H2a9vJHU.roa RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml sbgp-ipAddrBlock: critical IPv4: 60.199.171.0/24 Signature Algorithm: sha256WithRSAEncryption 4d:28:9e:0b:a0:80:0a:f7:b7:4b:e2:3d:0a:ce:0e:08:19:1a: 3c:38:b5:14:f5:72:5a:e6:83:a0:18:2e:03:27:0e:2c:d7:44: d7:4f:c1:eb:54:70:49:ef:80:cb:5d:28:32:90:b5:1f:3b:28: 5d:c7:d5:3b:cc:a7:1d:ec:e3:f6:53:d0:bc:cd:32:48:0c:7e: 6d:bc:3c:c1:54:f6:7c:1f:96:ad:31:9b:10:98:be:b6:e9:d5: c2:86:89:53:0e:2b:0b:df:ba:89:48:50:47:8f:55:53:b6:9c: 87:a5:18:d6:6d:b6:9e:1c:07:e8:f1:a6:19:24:80:0e:95:92: 7f:94:ce:77:62:d6:70:02:31:df:0b:2b:60:68:41:ff:a5:57: 14:a8:82:d2:ae:bd:b7:f5:0b:49:3e:13:4e:c5:7d:91:bb:88: 53:5e:67:7a:06:03:58:ec:2a:83:31:b1:cd:d3:e5:b0:1e:ff: 4e:00:4f:7b:f4:73:b6:de:42:70:62:83:1b:a4:12:58:66:46: a9:e0:e6:82:75:78:d8:2d:80:bc:9a:27:f7:7a:6c:35:72:52: 26:79:e1:b3:b0:23:9c:39:1e:ea:21:d2:38:33:e1:ca:d3:d8: b2:85:1b:1e:37:ff:de:bd:f6:7d:15:e0:cc:83:ac:f8:43:bc: 59:c7:e3:f2 -----BEGIN CERTIFICATE----- MIIE1DCCA7ygAwIBAgICEu4wDQYJKoZIhvcNAQELBQAwMzExMC8GA1UEAxMoMThB NjY2M0Q2RTlGODBCRDRDRTdDOEFERkVCMzg3ODNDM0UxQTQ2NDAeFw0yNTAyMTAx NDA4NTRaFw0yNTA4MjYwMTU3MDNaMDMxMTAvBgNVBAMTKDE4RTE2QkM1MUM4Q0Y0 QkUwQkM5QzZBN0VCRkU4N0Q5QUY2RjI0NzUwggEiMA0GCSqGSIb3DQEBAQUAA4IB DwAwggEKAoIBAQDs8ZziQ+TJYEOjFmU+1fKhBomba0XAjIAKG1pk3q7Aa8YDARuz b+S7WeD1+6vIvDyqROYUFMCUAWo2U14KLTVTvZml0uMpcRfuR07wWY/bao1FUYdz d8UFYRiuDAQv4xSBk+rbWTog2XX3q2/Qin6K2w57mU801dbpOPhHW1nxOk1S8lh9 tS5RHDFHW0SbrrFZHg6Hfglpk5MhFryhzfI2unc9MM67KLulz5ip16Y0jC7eKj1q y5uhV1g+mAyVztxAzD6kmIhfOROGKIQZq3i2L1Z/kjoKa1gk98rxVB4iSQDhWS/4 FG6aSTPhZgzDx3pAywCVAJ0MqZ/FxEimzhBBAgMBAAGjggHwMIIB7DAdBgNVHQ4E FgQUGOFrxRyM9L4Lycan6/6H2a9vJHUwHwYDVR0jBBgwFoAUGKZmPW6fgL1M58it /rOHg8PhpGQwGAYDVR0gAQH/BA4wDDAKBggrBgEFBQcOAjBdBgNVHR8EVjBUMFKg UKBOhkxyc3luYzovL3Jwa2ljYS50d25pYy50dy9ycGtpL1RXTklDQ0EvUFJPRk9O RC9HS1ptUFc2ZmdMMU01OGl0X3JPSGc4UGhwR1EuY3JsMGAGCCsGAQUFBwEBBFQw UjBQBggrBgEFBQcwAoZEcnN5bmM6Ly9ycGtpY2EudHduaWMudHcvcnBraS9UV05J Q0NBL0dLWm1QVzZmZ0wxTTU4aXRfck9IZzhQaHBHUS5jZXIwDgYDVR0PAQH/BAQD AgeAMIGdBggrBgEFBQcBCwSBkDCBjTBYBggrBgEFBQcwC4ZMcnN5bmM6Ly9ycGtp Y2EudHduaWMudHcvcnBraS9UV05JQ0NBL1BST0ZPTkQvR09GcnhSeU05TDRMeWNh bjZfNkgyYTl2SkhVLnJvYTAxBggrBgEFBQcwDYYlaHR0cHM6Ly9ycmRwLnR3bmlj LnR3L3JyZHAvbm90aWZ5LnhtbDAfBggrBgEFBQcBBwEB/wQQMA4wDAQCAAEwBgME ADzHqzANBgkqhkiG9w0BAQsFAAOCAQEATSieC6CACve3S+I9Cs4OCBkaPDi1FPVy WuaDoBguAycOLNdE10/B61RwSe+Ay10oMpC1HzsoXcfVO8ynHezj9lPQvM0ySAx+ bbw8wVT2fB+WrTGbEJi+tunVwoaJUw4rC9+6iUhQR49VU7ach6UY1m22nhwH6PGm GSSADpWSf5TOd2LWcAIx3wsrYGhB/6VXFKiC0q69t/ULST4TTsV9kbuIU15negYD WOwqgzGxzdPlsB7/TgBPe/Rztt5CcGKDG6QSWGZGqeDmgnV42C2AvJon93psNXJS Jnnhs7AjnDke6iHSODPhytPYsoUbHjf/3r32fRXgzIOs+EO8Wcfj8g== -----END CERTIFICATE-----Generated at Mon Apr 7 02:02:57 2025 by rpki-client